Privacy Policy

ArcBrief controls the business information, account details, project materials, and support records described in this policy for its own managed service operations. Some hosting, communications, analytics, authentication, or infrastructure providers may process limited data on ArcBrief's behalf.

• Account and profile data such as name, email address, phone number, password hash, role, and account status.
• Order and draft data such as profession, business details, bio, specialization, city, district, domain preferences, template selection, plan selection, status history, and invoice data.
• Uploaded materials such as payment slips, screenshots, documents, images, logos, project files, and content files submitted for delivery or verification.
• Payment and finance data such as payment method, transaction reference, payment verification notes, invoice number, recurring billing status, and manual review actions.
• Communications such as support emails, revision requests, contact inquiries, and operational notes linked to orders or service history.
• Technical and security data such as session activity, route access patterns, timestamps, IP-derived security signals, file metadata, and audit or abuse prevention logs.
• Lead and contact form data submitted through delivered websites, where applicable to the managed service configuration.

• Create and manage accounts, orders, invoices, dashboards, and support workflows.
• Verify manual payments, prevent fraud, investigate disputes, and keep reliable finance records.
• Build, edit, host, launch, maintain, and support client websites and related operational services.
• Communicate about project status, approvals, changes, billing, renewals, incidents, and legal matters.
• Secure systems, monitor misuse, detect abuse, and preserve audit trails.
• Comply with legal obligations, enforce agreements, and protect ArcBrief's rights, staff, property, and payment claims.

ArcBrief does not sell personal information as part of this managed service model. Data may be disclosed only where reasonably necessary for service operations, compliance, collections, dispute handling, or client-requested technical setup.

• Hosting, infrastructure, storage, email, authentication, analytics, or monitoring providers acting on ArcBrief's instructions.
• Domain, DNS, email, payment, and other third-party vendors involved in the client's approved service configuration.
• Professional advisers, auditors, insurers, collection agents, or legal representatives where needed for payment recovery, compliance, or dispute resolution.
• Governmental, regulatory, or judicial bodies if disclosure is legally required or reasonably necessary to protect rights or investigate misuse.

ArcBrief keeps data only as long as reasonably necessary for delivery, support, renewals, security, tax, accounting, legal defense, and business recordkeeping. Some records may be retained after account closure or project completion where needed to document scope, approvals, payments, disputes, or compliance obligations.

Private uploads and payment proof may be deleted, archived, or restricted after they are no longer operationally necessary, but ArcBrief may keep enough evidence to defend payment, fraud, or legal claims.

ArcBrief uses reasonable administrative, technical, and operational safeguards appropriate to a managed-service business, including access controls, private storage for sensitive workflow materials, authentication controls, and audit or security event logging.

No system is perfectly secure. You should avoid sending unnecessary sensitive personal data and should notify ArcBrief promptly if you suspect unauthorized access, account compromise, or accidental disclosure.

You remain responsible for ensuring that any files, images, personal data, professional credentials, testimonials, identity documents, or other materials you submit may lawfully be collected, processed, modified, stored, and published as required for the service.

Where client submissions contain third-party or sensitive data, client confirms it has obtained all necessary notices, consents, and legal rights before submission.

ArcBrief may use cookies, session tokens, and similar technical mechanisms for login persistence, security, navigation, draft continuity, and operational analytics. Blocking these features may reduce service functionality.

You may request access, correction, or deletion of certain personal information by contacting support@arcbrief.com. ArcBrief may request reasonable identity verification and may decline or limit requests where data must be retained for legal compliance, unresolved payment matters, fraud prevention, dispute handling, or legitimate business records.

Clients should also understand that deleting certain order or project data may prevent continued support, verification, maintenance, or completion of the service.

Some infrastructure or service providers used by ArcBrief may process data outside Bangladesh. By using the service and submitting materials, you acknowledge that operational processing may occur wherever ArcBrief or its service providers maintain systems, subject to reasonable safeguards and contractual controls available to ArcBrief.

ArcBrief services are not directed to children. Do not submit children's data or unnecessary government, medical, biometric, or highly sensitive data unless it is strictly required for an approved project and lawfully permitted.

ArcBrief may revise this policy as operations, legal requirements, infrastructure, or service offerings change. Updated versions become effective when posted unless a later effective date is stated.

Legal and account questions should be sent to support@arcbrief.com.